[tproxy] Iptables rules

Ritter, Nicholas Nicholas.Ritter at americantv.com
Fri May 30 22:42:17 CEST 2008

What exactly are the redirection rules for wccp/iptables 1.4/squid
2.6/tproxy look like? I have browsed the Internet plus messed with it
for a while now and found that the README rules don't fully work, and
the examples on the Internet don't fully work.
Symptomatically, I see the router redirecting via the GRE tunnel, the
squid box sees the gre packets (2.6 kernel), but ifconfig does not show
the GRE interface counters incrementing, and the squid service run in
debug mode shows no transactions. Something is wrong with either my
iptables rules or my GRE tunnel setup. I don't think it is the GRE
tunnel because I set it up the same exact was as I did the non-tproxy
squid boxes that I have in the same setup which are working.
Any help would be a appreciated. I can provide my rule setup, etc. if
needed. My knowledge and direct interaction is limited with iptables,
which is one more reason why I think the problem is there. BTW - my
system log does show the tproxy module loading.

More information about the tproxy mailing list